Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Il_q8UAJgtthc2PG6Gb7K_Eb5sE.roa
File: Il_q8UAJgtthc2PG6Gb7K_Eb5sE.roa (raw, json)
Hash identifier: Qqf9aasF2gzzs0IdZvgiTstbgT7ohO1b3OGXMqxbSYA=
Subject key identifier: 22:5F:EA:F1:40:09:82:DB:61:73:63:C6:E8:66:FB:2B:F1:1B:E6:C1
Certificate issuer: /CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Certificate serial: 018FF0762CAAF06B69EF9019A5D83BD72720
Authority key identifier: 52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Il_q8UAJgtthc2PG6Gb7K_Eb5sE.roa
Signing time: Fri 07 Jun 2024 02:10:27 +0000
ROA not before: Fri 07 Jun 2024 02:10:27 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 2121
IP address blocks: 193.0.24.0/21 maxlen: 21
2001:67c:64::/48 maxlen: 48
Validation: Failed, certificate revoked on Fri 07 Jun 2024 03:05:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:f0:76:2c:aa:f0:6b:69:ef:90:19:a5:d8:3b:d7:27:20
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=52620415d2490a5ec3f6925b9f79040e8e22ddbf
Validity
Not Before: Jun 7 02:10:27 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=225feaf1400982db617363c6e866fb2bf11be6c1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:30:8e:c1:d4:08:e6:98:97:4f:87:b1:9f:7f:
5a:1b:57:4e:12:bb:fc:0a:a3:66:8f:1f:0a:04:bc:
f8:ee:11:0e:0f:8d:54:01:a7:a8:e4:00:0f:d7:09:
2d:27:18:24:1a:a2:41:44:ce:5c:9d:6e:6e:7c:32:
b3:3a:61:26:ad:17:7b:6d:ad:63:ec:bf:e5:86:9b:
68:49:0d:ae:c7:fd:4a:bd:b9:64:9e:cf:23:ed:a8:
69:3e:43:11:83:00:b2:b1:09:81:ff:9a:7a:f0:11:
c9:3d:e0:38:18:95:66:47:a6:9c:92:c0:9d:63:a0:
8c:8c:9c:a6:7c:93:f9:69:b9:48:2d:3d:09:af:d2:
7c:f6:9f:4d:12:77:17:ad:c3:83:b5:06:e2:de:e8:
2f:55:38:39:01:05:cc:39:a8:da:a6:e3:62:5b:ce:
4f:2f:5b:94:20:2f:6e:b5:50:79:da:86:c4:a5:13:
0f:f0:70:d1:b1:5e:b4:ab:96:98:87:88:50:a8:11:
44:92:72:ec:2a:54:d3:37:f4:eb:25:e8:a4:8c:e7:
87:09:90:63:31:ad:8b:77:51:6c:6e:92:37:7e:4a:
e5:29:06:4d:27:2d:ec:64:a2:6e:73:c6:66:5f:89:
2d:14:d6:ea:a4:7c:3f:7a:f6:f6:05:d8:5e:de:a8:
75:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
22:5F:EA:F1:40:09:82:DB:61:73:63:C6:E8:66:FB:2B:F1:1B:E6:C1
X509v3 Authority Key Identifier:
keyid:52:62:04:15:D2:49:0A:5E:C3:F6:92:5B:9F:79:04:0E:8E:22:DD:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UmIEFdJJCl7D9pJbn3kEDo4i3b8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/Il_q8UAJgtthc2PG6Gb7K_Eb5sE.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/09837c-98f3-4c9f-aebf-881488ffdbb0/1/UmIEFdJJCl7D9pJbn3kEDo4i3b8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.0.24.0/21
IPv6:
2001:67c:64::/48
Signature Algorithm: sha256WithRSAEncryption
79:e2:74:1b:44:97:ed:01:da:4f:ae:79:27:e1:2d:c2:8d:b6:
10:e4:c4:08:72:7a:d9:e6:c8:b6:96:5d:a8:86:f8:cf:20:0a:
c4:be:99:19:72:1f:bc:e1:08:76:1a:2d:d4:f4:ec:59:3f:2f:
9f:1d:0f:ac:f4:81:a5:05:c4:8e:dc:02:41:61:d2:eb:9f:1d:
87:32:0b:6b:73:52:35:d8:d9:13:9d:bc:3f:c0:63:bd:b5:6b:
8d:0c:d2:7c:c9:07:de:50:61:1b:3b:80:fd:ab:f7:a2:9a:44:
26:51:e4:f0:2c:bc:89:5b:85:e0:82:fc:41:6e:9a:d9:20:26:
0a:38:54:f3:03:87:f2:24:51:52:ac:9d:c0:54:1e:d5:cf:30:
cd:d3:dd:ed:57:15:22:67:40:2b:e0:9e:3a:e6:13:f2:00:76:
32:46:52:aa:8f:bc:03:6f:11:9c:d7:56:53:a1:10:95:bf:bb:
8e:f3:d7:34:17:6c:bb:a1:06:7d:bc:3e:99:b6:91:50:3d:2d:
dc:c5:42:05:c6:57:10:ca:04:7d:68:5d:f1:e7:1f:68:00:10:
c4:f1:9e:7a:09:7a:71:66:da:51:2a:2e:1a:df:b3:e5:1a:80:
75:8c:3a:c4:23:74:fe:38:78:f3:ee:0f:39:2a:13:a8:d2:1c:
8a:c6:7a:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 7 05:22:06 2024 by rpki-client on console-ams.rpki-client.org